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CLAIMS 

We Claim: 

Pr^*^^ 1. method of ordering, paying for and delivering goods arfa services, 

^o\nppi^ing: / 

s ordering and paying for a content by a user selected fromf a content provider; 

transmitting a first service response value calculated by the user to the 
content provider; / 

calculating a second service response valued a network operator when the 
user requests the content from the network operator; 

verifying, by the network operator contacting the content provider, that the first 
service response value matches the second service response value; and 

transmitting the content to the user by the network operator when the first 
service response value matches / the second service response value. 

2. The methoja recited in claim 1 , wherein the first service response value 
is calculated by the /user based on a random number supplied by the content 
provider and a first secret key possessed by the user. 

3. /The method recited in claim 1 , wherein the second service response 
value is calculated by the network operator based on the random number received 
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3 from the user and a second secret kjey possessed by the network operator and 

4 associated with the user. 



1 4. The method recited in claim 2, wherein the first secret key is contained 

2 in a subscriber identification module/provided by the network operator and contained 

3 in the mobile station in such a manner that the user and the mobile station may not 

4 discover the value of the secret ke\ 



5. The method recited in claim 3, wherein the second secret key is stored 
in an authentication center of a/telecom infrastructure operated by the network 
3/ operator and the first secret key and the second secret key are identical and 

4 assigned when the user subscribes for a telecommunication service provided by the 

5 network operator. 




1 6. The method recited in claim 4, wherein the first service response value 

2 is calculated by an A3 algorithm module contained in the subscriber identification 

3 module of the mobile station based on the first secret key and the random number. 



1 7. The method recited in claim 5, wherein the second service response 

2 value is calculated by an A3 algorithm module, contained in the authentication center 

3 of the telecom infrastructure, based on the second secret key, contained in the 

4 authentication center of the telecom infrastructure, and the random number. 
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1 8. The method recited in claim 6, wherein the mobile statkm is a cellular 

2 phone with GSM authentication capability connected to a processor based system, 

3 or a WAP-capable cellular phone with GSM authentication capability, or a HTML 

4 capable cellular phone with GSM authentication capabilrt^. 

1 9. The method recited in claim 7, whereirr the content is encrypted by the 

2 network operator using a cipher key, calculatecr by an A8 algorithm module based 

3 on the random number and the second secret key, prior to transmitting the content 

4 to the user. / 

1 10. The method recited ir/claim 8, further comprising: 

|^ ^ decrypting the content b/the mobile station using an A8 algorithm module 

Vy 3 contained in the subscriber identification module of the mobile station to generate the 

4 cipher key based on the random number and the first secret key. 

1 11. The method recited in claim 9, wherein the cipher key is used as a seed 

2 to a cryptographic protocol which transforms the cipher key into a stronger cipher 

3 key. / 

1 t2. The method recited in claim 1, wherein the user pays the content 

2 provider for the content, using a credit card, debit card, or electronic transferral of 

3 furids. 
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A method of ordering, paying for and delivering goods and services, 

corriprrsing: 

ordering a content having a content ID by a user selected from a content 
provider; 

transmitting a first service response value, a mobile network identifier, and a 
cipher key by the user to the content provider; 

transmitting the first service response value, the mobile network identifier, and 
the random number to a network operator by the content provider; 

calculating a second service response value and a cipher key by a network 
operator and determining if the first service response value matches the second 
service response value; and 

transmitting the content to the user, when the first service response value 
matches second service response value, by the content provider. 



4 
5 
6 
7 
8 
9 
10 
11 
12 
13 



14<^ The method recited in claim 13, wherein the first service response value 
is emulated by the user based on a rarraom number supplied by the content 
► Q/y{^rovider and a first secret key contarfTed in a subscriber identification module 
provided by the network operator and contained in a mobile station. 

1 15. The method Recited in claim 13, wherein the second service response 

2 value and a cipher key are calculated based on the random number, and a mobile 

3 network identifier/used to access a second secret key located in a authentication 

4 center of a telefcom infrastructure, received from the content provider. 
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16. The method recited Jsn claim 14, wherein the first secret key is not 
accessible directly by the user or the mobile station and the value of the secret key 
may not be discovered by the user/ but is identical to the second secret key and both 
the first secret key and the second secret key are assigned when the user 
subscribes for a telecommunication service provided by the network operator. 

1 7. The method recited/in claim 1 6, wherein the first service response value 
is calculated by an A3 algorithm module contained in the subscriber identification 
module of the mobile station based on the first secret key and the random number. 

18. The method recited in claim 15, wherein the second service response 
value is calculated by an A3 algorithm module, contained in the authentication center 
of the telecom infrastructure, based on the second secret key, contained in the 
authentication center of the itelecom infrastructure, and the random number. 



19. The method recited in claim 17, wherein the mobile station is a cellular 
phone with GSM authentication capability connected to a processor based system, 
or a WAP-capable cellular phone with GSM authentication capability, or a HTML 
capable cellular phone wiih GSM authentication capability. 



20. The method 
network operator using 



ecited in claim 1 8, wherein the content is encrypted by the 
tfte cipher key, calculated by an A8 algorithm module based 
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on the random number and the second secret key, prior to transmitting the cqpftent 
to the user. 

21. The method recited in claim 19, further comprising: 
decrypting the content by the mobile station using an Pfi algorithm module 

contained in the subscriber identification module of the mobjlfe station to generate a 
cipher key based on the random number and the first se6ret key. 

22. The method recited in claim 13, vvherein the user is billed by the 
network operator for the content in a telephocre bill. 



23. The method recited in claim 13, further comprising: 

hashing, by the user, a priceyof the content, the random number and a seller 
ID to create a hashed number; 

computing, by the user, the first service response value based on the secret 
key and the hashed rando / m number; 

transmitting, by the user, the first service response value to the content 
provider; 

transmitting, by the content provider, the random number, the seller ID the 
price of the><5ontent and the first service response to the network operator; 

iputing, by the network operator, the second service response value based 
on thef secret key, the price transmitted by the content provider and the random 
iber; 
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13 verifying, by the network operator that the first service responseA/alue 

14 matches the second service response value; and / 

15 billing the user, by the network operator, the price when tMe first service 

16 response value matches the second service response value in ^telephone bill. 

1 24. The method recited in claim 20, wherein^e cipher key is used as a 

2 seed to a cryptographic protocol which transforms the cipher key into a stronger 

3 cipher key. / 

1 25. A method of ordering, paying for and delivering goods and services, 

2 comprising: / 

3 ordering a content from a network operator, having a content ID selected by 
\a a user; / 

5 transmitting a first service response value calculated by the user to the 

6 network operator; / 

7 calculating a/second service response value and a cipher key by a network 

8 operator and determining if the first service response value matches the second 

9 service response value; 

10 transmitting the content ID, and a cipher key to the content provider; and 

1 1 /transmitting the content to the user by the content provider when requested 

12 bylneuser. 
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1 26. The method recited infclaim 25, wherein the first service response value 

2 is calculated by the user based on a random number supplied by the network 

3 operator and a first secret key possessed by the user. 

1 27. The method recited in claim 25, wherein the second service response 

2 value is calculated by the network operator based on the random number and a 

3 second secret key possessed py the network operator and associated with the user. 

1 28. The method recited in claim 26, wherein the first secret key is contained 

2 in a subscriber identification module provided by the network operator and contained 

3 in the mobile station in such a manner that the user and the mobile station may not 

4 discover the value of the secret key. 

29. The method recited in claim 27, wherein the second secret key is 

2 stored in an authentication centerof a telecom infrastructure operated by the network 

3 operator and the first secret key and the second secret key are identical and 

4 assigned when the user/subscribes for a telecommunication service provided by the 

5 network operator. 

1 30. The method recited in claim 28, wherein the first service response value 

2 is calculated by an A3 algorithm module contained in the subscriber identification 

3 module of the mobile station based on the first secret key and the random number. 
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31. The method recited in claim 29, wherein and the second service 
response value is calculated by a A3 algorithm module, contained/in the 
authentication center of the telecom infrastructure based on the second secret key, 
contained in the authentication center of the telecom infrastructure/and the random 
number. / 

32. The method recited in claim 30, wherein tbre mobile station is a cellular 
phone with GSM authentication capability connected to a processor based system, 
or a WAP-capable cellular phone with GSM authentication capability, or a HTML 
capable cellular phone with GSM authentication capability. 

33. The method recited in claim 31 , wherein the content is encrypted by the 
content provider using a cipher key, calculated by an A8 algorithm module based on 
the random number and tne second secret key and supplied by the network 
operator, prior to transmitting the content to the user. 

34. The/method recited in claim 32, further comprising: 

decimating the content received by from the content provider by the mobile 
station using an A8 algorithm module contained in the subscriber identification 
module/of the mobile station to generate a cipher key based on the random number 
and tne first secret key. 



43 



ATSK Reference No.: 017.37999X00 
Nokia Reference No.: 27309 

1 35. The method recited in claim 33, wherein the cipher key is used as^a 

2 seed to a cryptographic protocol which transforms the cipher key into a stronger 

3 cipher key. / 

1 36. The method recited in claim 25, wherein the user/is billed by the 

2 network operator for the content in a telephone bill. / 

1 37. A method of ordering, paying for and delivering goods and services, 

2 comprising: / 

3 ordering a content, having a content ID, by a user selected from a network 
4x, operator; / 

5 \ transmitting a first service response value calculated by the user to the 

6 network operator; / 

7 / calculating a second service Response value and a cipher key by a network 
<b operator and determining if the>first service response value matches the second 
9 service response value; and / 

1 0 transmitting the cocnent to the user by the network operator when requested 

11 by the user. / 

1 38. The^riethod recited in claim 37, wherein the first service response value 

2 is calculated/by the user based on a random number supplied by the network 

3 operator and a first secret key possessed by the user. 
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1 39. The method recited in claim 37, wherein the second service response 

2 value is calculated by the network operator based on the random number and a 

3 second secret key possessed by the network operator and associated with the user. 

1 40. The method recited in claim 38, wherein the first secret key is contained 

2 in a subscriber identification module provided by the network OE^erator and contained 

3 in the mobile station in such a manner that the user and the mobile station may not 

4 discover the value of the secret key. / 

1 41. The method recited in claim 39, wnerein the second secret key is 

2 stored in an authentication center of a telecom in*rastructu re operated by the network 

3 operator and the first secret key and the/second secret key are identical and 

4 \ assigned when the user subscribes for a telecommunication service provided by the 

r% \ / 

5 \ network operator. / 

V7 / 

1 42. The method recited/fn claim 40, wherein the first service response value 

2 is calculated by an A3 algorithm module contained in the subscriber identification 

3 module of the mobile station based on the first secret key and the random number. 

1 43. The method recited in claim 41 , wherein the second service response 

2 value is calculated by an A3 algorithm module, contained in the authentication center 

3 of the telecom infrastructure, based on the second secret key, contained in the 

4 authentication center of the telecom infrastructure, and the random number. 
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1 44. The method recited in claim 42, wherein the mobile station is a cellular 

2 phone with GSM authentication capability connected to a processor basea system, 

3 or a WAP-capable cellular phone with GSM authentication capability; or a HTML 

4 capable cellular phone with GSM authentication capability. 

1 45. The method recited in claim 43, wherein the content is encrypted by the 

2 network operator using a cipher key, calculated by an/A8 algorithm module based 

3 on the random number and the second secret key and supplied by the network 

4 operator, prior to transmitting the content to theZser. 

1 46. The method recited in claim y44, further comprising: 

2 decrypting the content received/oy from the network operator by the mobile 
1 3 station using an A8 algorithm module contained in the subscriber identification 
4/ module of the mobile station to generate a cipher key based on the random number 
'5 and the first secret key. 

1 47. The meth6d recited in claim 45, wherein the cipher key is used as a 

2 seed to a cryptographic protocol which transforms the cipher key into a stronger 

3 cipher key. 



1 48/ The method recited in claim 37, wherein the user is billed by the 

2 network'operator for the content in a telephone bill. 
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49. A method of ordering, paying for and delivering goods and services, 
comprising: 

ordering and paying for a plurality of contents by a user seated from a 
content provider; 

transmitting a plurality of first service response values calculated by the user 
to the content provider; 

calculating a plurality of second service resp^rise values by a network 
operator when the user requests the content from^th,e network operator; 

verifying, by the network operator contacting the content provider, that a one 
of the plurality of first service response values matches a one of the plurality of 
second service response values; and 

transmitting a content of the plurality of contents to the user by the network 
operator when the one of the plurality of first service response values matches the 
one of the plurality of second service response values. 



50. The method/recited in claim 49, wherein the plurality of first service 
response values are calculated by the user based on a plurality of random numbers 
supplied by the content provider and a first secret key possessed by the user. 



51. The method recited in claim 49, wherein the plurality of second service 
response /alues are calculated by the network operator based on the plurality of 
orr/nui 



rando^'numbers received from the user and a second secret key possessed by the 
network operator and associated with the user. 
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1 52. The method recited in claim 50, wherein the first secret key is contained 

2 in a subscriber identification module provided by the network operator and contained 

3 in the mobile station in such a manner that the user and the mobile station may not 

4 discover the value of the secret key. / 

1 53. The method recited in claim 51, wherein/trie second secret key is 

2 stored in an authentication center of a telecom infrastructure operated by the network 

3 operator and the first secret key and the second secret key are identical and 

4 assigned when the user subscribes for a telecommunication service provided by the 

5 network operator. / 

1 54. The method recited Lin claim 52, wherein the plurality of first service 

2 response values are calculated by an A3 algorithm module contained in the 

3 subscriber identification mjsfaule of the mobile station based on the first secret key 

4 and the plurality of rangfom numbers. 

1 55. TJae method recited in claim 53, wherein and the plurality of second 

2 service response values are calculated by an A3 algorithm module, contained in the 

3 authentication center of the telecom infrastructure based on the second secret key, 

4 contained in the authentication center of the telecom infrastructure, and the plurality 

5 ofrandom numbers. 
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1 56. The method recited in claim 54, wherein the mobile station is a cellular 

2 phone with GSM authentication capability connected to a processor based system, 

3 or a WAP-capable cellular phone with GSM authentication capability/or a HTML 

4 capable cellular phone with GSM authentication capability. / 

1 57. The method recited in claim 55, wherein th^content of the plurality of 

2 contents is encrypted by the network operator using'a cipher key, calculated by an 

3 A8 algorithm module based on a random number of the plurality of random numbers 

4 and the second secret key, prior to trar^smitting the content of the plurality of 

5 contents to the user. / 

1 58. The method recrted in claim 56, further comprising: 

2 decrypting the content of the plurality of contents by the mobile station using 

3 an A8 algorithm module contained in the subscriber identification module of the 

4 mobile station to^enerate a cipher key based on the random number of the plurality 

5 of randon^^ and the first secret key. 

1 59. The method recited in claim 57, wherein the cipher key is used as a 

2 seed to a cryptographic protocol which transforms the cipher key into a stronger 

3 /Cipher key. 
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1 

2 
3 



60. The method recited in claim 49, wherein the user pays the coment 



provider for the plurality 
transferral of funds. 



of contents, using a credit card, debit card, or electronic 



61. 



A computer prog 



-am executable by a processor and embodied on a 



computer readable medium to pay for and deliver goods anef services, comprising: 



code segment to computes a service response value 
Dy a user and a network operator, and on a random 
provider after a jdser selects a content having a 



an A3 algorithm module 
based a secret key, possessed 
number provided by a content 
content ID to purchase; and 

a business model A module code sfegment to enable a user to select the 

frbm the^content provider and receive the random 
number from the content/pfovidef , ti^ramM / the service response value to the content 
provider computed by t\\e !(V3 a^orrmm module code segment, transmit the content 
ID, and the random numb^tp^ network operator and receive the content from the 
network operator based on verification of the content ID, the random number, and 



content having the content 



the service response value by 



the content provider. 



62. The computdr 
an A8 algorithm modulo 
random number and the secret 



program recited in claim 61 , further comprising: 
code segment to compute a cipher key based on the 
key and used to encrypt the content. 
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1 63. The computer program recijfed in claim 62, wherein the secret key is 

2 contained in a subscriber identification module provided by the network operator and 

3 contained in the mobile station in such ^manner that the user and the mobile station 

4 may not discover the value of the secret key and the secret key is also stored in a 

5 authentication center of a telecom infrastructure operated by the network operator. 

1 64. The computer program recited in claim 63, wherein the mobile station 

2 is a cellular phone with GSM authentication capability connected to a processor 

3 based system, or a WAP-capable cellular phone with GSM authentication capability, 

4 or a HTML capable cellular phone with GSM authentication capability. 

1 65. The computer^pr^g/am recited in claim 64, wherein the user pays the 

2 content provider for thp content, using a credit card, debit card, or electronic 

3 transferral of funds. 



1 

2 
3 
4 
5 
6 
7 
8 



66. A computer pTOoram executable by a processor and embodied on a 
computer readable medium ta pay for and deliver goods and services, comprising: 
an A3 algorithm module code segment to compute a service response value 
based a secret key, possessed by a user and a network operator, and on a random 
number provided by a content provider after a user selects a content having a 
content ID to purchase; and 

a business model B rrhodule code segment to enable a user to select the 

II) from the content provider and receive the random 



content having the content 
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number from the content provider, transmits a mobile network identifier and the 
service response value to the content provider computed by the A3 algorithm module 
code segment, transmit the content IE), and the random number to a network 
operator and receive the content from the content provider based on verification of 
the content ID, the random number, anq the service response value by the content 
provider and the network operator. 

67. The computer program recited in claim 66, further comprising: 
an A8 algorithm module code segment to compute a cipher key based on the 
random number and the secret key arid used to encrypt the content. 




68. The computer progj^mTrecited in claim 67, wherein the secret key is 
contained in a subscriber identification module provided by the network operator and 



r 



contained in the mobile station in such a mannerlhatthe user and the mobile station 



may not discover the value of t 




authentication center of a telecom infrastructure operated by the network operator. 



69. The computer program 
is a cellular phone with GSM 
based system, or a WAP-capable ce 
or a HTML capable cellular phone 



ey and the secret key is also stored in a 



recited in claim 68, wherein the mobile station 
autherttication capability connected to a processor 

lular phone with GSM authentication capability, 
with GSM authentication capability. 
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1 70- The computer program repted in claim 66, wherein the business model 

2 B module code segment bills the uspr for the content in a telephone bill network 

3 operator. 



1 
2 
3 
4 
5 
6 
7 
8 
9 
10 
11 

1 
2 
3 



71. The computer program recited in claim 66, further comprising: 
a one-way hash function cope segment contained in the mobile station and 
the network operator to generate a hashed number based on the random number, 
a seller ID and a price for the content; and 

the A3 algorithm module code segment contained in the mobile station and 
the network operator to generate the first service response value calculated by the 
mobile station based on the secret key and hashed number and the second service 
response calculated by network operator based on the secret key and a seller ID, 
random number and price transmitted by the content provider to the network 
provider, wherein the u$er is/ 
service response value 



lulled for the price in a telephone bill when the first 
matches the seednd service response value. 



72. The computer program recited in claim 71 , further comprising: 
a cryptographic protocol which uses the cipher key as a seed to transform the 
cipher key into a stronger cipher key. 



1 73. A computer program executable by a processor and embodied on a 

2 computer readable medium to pay for and deliver goods and services, comprising: 
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an A3 algorithm module code segment to compute a service response value 
based a secret key, possessed by a user and a network operator, and on a random 
number provided by a network operator after a user selects a content having a 
content ID to purchase; and 

a business model C module code segment to enable a user to select the 
content having the content ID from the network operator and receive the random 
number from the network operator, transmits the service response value to the 
network operator computed by tne A3 algorithm module code segment, transmit the 
content ID, and the random number to a content provider and receive the content 
from the content provider based on verification of the content ID, the random 
number, and the service response value having been sent by the network provider. 



74. The 

an A8 algorithm/ modul^ 
random number and 




75. The computer p 
contained in a subscriber ider 



program recited in claim 73, further comprising: 
segment to compute a cipher key based on the 
and used to encrypt the content. 



rogram recited in claim 74, wherein the secret key is 
ification module provided by the network operator and 
contained in the mobile station in such a manner that the user and the mobile 
station may not discover the yalue of the secret key and the secret key is also stored 
in a authentication center df a telecom infrastructure operated by the network 
operator. 
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76. The computer program recited in claim 75, wherein the mobile station 
is a cellular phone with GSM authentication capability connected to a processor 
based system, or a WAP-capable cellular phone with GSM authentication capability, 
or a HTML capable cellular phone with GSM authentication capability. 

77. The computer program recited in claim 73, wherein the business model 
C module code segment bills the qser for the content in a telephone bill from the 
network operator. 



78. A computer program executable by a processor and embodied on a 
computer readable medium to pay for and deliver goods and services, comprising: 
an A3 algorithm module^pde segment to compute a service response value 
based a secret key, possessed py a user>and a network operator, and on a random 
number provided by a netw6c|^jip^rator after a user selects a content having a 
content ID to purchase; and 

a business model D mpdule code segment to enable a user to select the 



content having the content ID 



from the network operator and receive the random 



number from the network operator, transmits the service response value to the 
network operator computed by the A3 algorithm module code segment, transmit the 
content based on verification qf the service response value having been sent by the 
user. 
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79. 



The computer prograrr 
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recited in claim 78, further comprising: 



an A8 algorithm module code segment to compute a cipher key based on the 

id used to 



random number and the secret key an 



80. The computer program 
contained in a subscriber identification 
contained in the mobile station in such 
may not discover the value of the 
authentication center of a telecom 



sec r et 



encrypt the content. 



recited in claim 79, wherein the secret key is 
module provided by the network operator and 
a manner that the user and the mobile station 
key and the secret key is also stored in a 
inf restructure operated by the network operator. 



81. The computer program fecited in claim 80, wherein the mobile station 
is a cellular phone with GSM authentication capability connected to a processor 
based system, or a WAP-capable cellular phone with GSM authentication capability, 
or a HTML capable cellular pfnone with GSM authentication capability. 

82. The computer p -ogram recite^Hn claim 78, wherein the business model 
D module code segment bill^ thejpser for the content in a telephone bill from the 
network operator. 



1 83. A computer progra 

2 computer readable medium to pay 

3 an A3 algorithm module 

4 response values based a secret 



executable by a processor and embodied on a 
for and deliver goods and services, comprising: 
c<bde segment to compute a plurality of service 
, possessed by a user and a network operator, 



key 
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and on a plurality of random numbers provided by a content provider after a user 
selects a plurality of contents having a plurality of content IDs to purchase; and 

a business model E module codje segment to enable a user to select the 
plurality of contents having the plurality df content IDs from the content provider and 
receive the plurality of random numbers from the content provider, transmit the 



plurality of service response values to 



he content provider computed by the A3 



algorithm module code segment, transmit one content ID of the plurality of content 
IDs, and one random number of the plurality of random numbers to a network 
operator and receive the content from the network operator based on verification of 
the one content ID, the one random numper, and the one service response value by 
the content provider. 



-ecited in cL£wrr83, further comprising: 

Eb compute a cipher key based on the 
and used to encrypt the one content. 



84. The computer progra 
an A8 algorithm modul 
one random number and the secfel 





key 



contained in the mobile station in such a 



85. The computer program recited in claim 84, wherein the secret key is 
contained in a subscriber identification rpodule provided by the network operator and 

manner that the user and the mobile station 
may not discover the value of the secret key and the secret key is also stored in a 
authentication center of a telecom infrastructure operated by the network operator. 
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1 86- The computer program yecited in claim 85, wherein the mobile station , 

2 is a cellular phone with GSM authentication capability connected to a processor 

3 based system, or a WAP-capable cellular phone with GSM authentication capability, 

4 or a HTML capable cellular phoneA/vith GSM authentication capability. 

1 87. The computer program recited in claim 83, wherein the user pays the 

2 content provider for the content, using a credit card, debit card, or electronic 

3 transferal of funds. I 

1 88. A system to pay for and deliver goods and services, comprising: 

2 an A3 algorithm module to compute a service response value based a secret 

3 key, possessed by a user and a network operator, and on a random number 

4 provided by a content prcwiden^fter a user selects a content having a content ID to 

5 purchase; and I S 

6 a business modetl A module to^nable a user to select the content having the 

7 content ID from the contejjtjflrovider and receive the random number from the 

8 content provider, transmit tme service response value to the content provider 

9 computed by the A3 algorithm module, transmit the content ID, and the random 

10 number to a network operator and receive the content from the network operator 

11 based on verification of the content ID, the random number, and the service 

12 response value by the content provider. 
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89. 



The system recited 



in claim 88, further comprising: 
an A8 algorithm module to compute a cipher key based on the random 
number and the secret key and used to encrypt the content. 



1 

2 
3 
4 
5 

1 
2 
3 
4 

1 
2 
3 



90. The system recited in claim 89, wherein the secret key is contained in 
a subscriber identification module provided by the network operator and contained 
in the mobile station in such a mannerlthat the user and the mobile station may not 
discover the value of the secret key and the secret key is also stored in a 
authentication center of a telecom infrastructure operated by the network operator. 



91 . The system recited in clai 
phone with GSM authentication capab 



i ti 90, wherein the mobile station is a cellular 
lity connected to a processor based system, 
or a WAP-capable cellular phone with GSM authentication capability, or a HTML 
capable cellular phone with GSM authentication capability. 



92. The system recited inj 
provider for the content, using a cre< 
funds. 



dlaim 88, wh^r^in the user pays the content 
carcl^'debit card, or electronic transferral of 



93. A system to pay for and deliver goods and services, comprising: 
an A3 algorithm module to compute a service response value based a secret 
key, possessed by a user and a network operator, and on a random number 
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provided by a content provider after ajuser selects a content having a content ID to 
purchase; and 

a business model B module to/enable a user to select the content having the 
content ID from the content provider and receive the random number from the 
content provider, transmits a mobile network identifier and the service response 
value to the content provider comp jted by the A3 algorithm module, transmit the 
content ID, and the random numbe" to a network operator and receive the content 
from the content provider based on verification of the content ID, the random 
number, and the service response value by the content provider and the network 
operator 



;e 



94. The syste 
an A8 algorithm mjbdule tc 
number and the secret ke 



in claim 93, further comprising: 
compute a cipher key based on the random 
and usfed to encrypt the content. 



95. The system recited in 
a subscriber identification module 
in the mobile station in such a mar 
discover the value of the secret ke{y 
stored in a authentication center of la 
operator. 



claim 94, wherein the secret key is contained in 
Drovided by the network operator and contained 
ner that the user and the mobile station may not 
and the secret key is also 
telecom infrastructure operated by the network 
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96. The system recited in cfaim 95, wherein the mobile station is a cellular 
phone with GSM authentication capability connected to a processor based system, 
or a WAP-capable cellular phone with GSM authentication capability, or a HTML 
capable cellular phone with GSM authentication capability. 



97. The system recited in 
bills the user for the content in a 

98. The system recited 



claim 93, wherein the business model B module 
telephone bill network operator. 

n claim 93, further comprising: 



a one-way hash function contained in the mobile station and the network 
operatorto generate a hashed nur iber based on the random number, a seller ID and 
a price for the content; and ^ 

the A3 algorithm module contained in the mobile station and the network 
operatorto generate the first service response value calculated by the mobile station 
based on the secret key and ha^he^^umber and the second service response 
calculated by network operator based on the secret key and a seller ID, random 



number and price transmitted 



wherein the user is billed for the 



i 



s 



response value matches the secoiTOservice response value 




99. The system recited in 



the content provider to the network operator, 
lephone bill when the first service 



claim 98, further comprising: 



a cryptographic protocol whi :h uses the cipher key as a seed to transform the 



14 cipher key into a stronger cipher key. 
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100. A system to pay for and deliver goods and services, comprising: 
an A3 algorithm module to compute a service response value based a secret 
key, possessed by a user and a netwDrk operator, and on a random number 
provided by a network operator after a user selects a content having a content ID to 
purchase; and 

a business model C module to ena 3le a user to select the content having the 
content ID from the network operator and receive the random number from the 



network operator, transmits the service 



response value to the network operator 



computed by the A3 algorithm module, transmit the content ID, and the random 
number to a content provider and receive the content from the content provider 



based on verification of the content ID 



response value having been sent by the network provider 



101. The system recited i 
an A8 algorithm module to fcompjute 
number and the secret key and used to ehcrypt 



the random number, and the service 



|m 100, further comprising: 

cipher key based on the random 
the content. 




01 , wherein the secret key is contained 



ed by the network operator and contained 



102. The system recited in 
in a subscriber identification module provide 
in the mobile station in such a manner thatfthe user and the mobile 
station may not discover the value of the secret key and the secret key is also stored 
in a authentication center of a telecom infrastructure operated by the network 
operator. 
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1 103. The system recited 

2 cellular phone with GSM authentication 

3 system, or a WAP-capable cellular 

4 HTML capable cellular phone with G 
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claim 102, wherein the mobile station is a 
capability connected to a processor based 
pfj»one with GSM authentication capability, or a 
M authentication capability. 



1 104. The system recited in claim 103, wherein the business model C 

2 module bills the user for the content/ in a telephone bill from the network operator. 
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105. A system to pay forjand deliver goods and services, comprising: 
an A3 algorithm module to compute a service response value based a secret 
key, possessed by a user and a network operator, and on a random number 
provided by a network operator afljer a user selects a content having a content ID to 
purchase; and 

a business model D modul^ to enable a user to select the content having the 

r and receive the random number from the 
se value to the network operator 
computed by the A3 algorithm module, tcafismit the content based on verification of 
the service response value having been sent by the user. 



content ID from the netwo 
network operator, transmit; 




106. The system recited in claim 105, further comprising: 

tc 



an A8 algorithm module 



number and the secret key and used to encrypt the content 



compute a cipher key based on the random 
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107. The system recited in claim 106, wherein the secret key is contained 
in a subscriber identification module provided by the network operator and contained 
in the mobile station in such a manner tnat the user and the mobile station may not 



discover the value of the secret key 
authentication center of a telecom infra 



and the secret key is also stored in a 
tructure operated by the network operator. 



108. The system recited in/claim 107, wherein the mobile station is a 
cellular phone with GSM authentication capability connected to a processor based 
system, or a WAP-capable cellular phone with GSM authentication capability, or a 
HTML capable cellular phone with GSM authentication capability. 

109. The system recited in claim 105, wherein the business model D 



module bills the user for the content 



110. A system to pa 



an A3 algorithm moduk 
based a secret key, possessed 




in a telephone bill from the network operator. 



for and deliver goods and services, comprising: 
to compute a plurality of service response values 



by a 



of random numbers provided by a^ 



user anpka network operator, and on a plurality 
tent provider after a user selects a plurality of 
contents having a plurality of content IDs to purchase; and 

a business model E module to enable a user to select the plurality of contents 
having the plurality of content IDs from the content provider and receive the plurality 
of random numbers from the con tent provider, transmit the plurality of service 
response values to the content prjovider computed by the A3 algorithm module, 
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transmit one content ID of the plurality of 
plurality of random numbers to a network 
network operator based on verification 
number, and the one service response 
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ontent IDs, and one random number of the 
operator and receive the content from the 
of the one content ID, the one random 
\Jalue by the content provider. 



111. The system recited in cllaim 
an A8 algorithm module to compijte 
number and the secret key and used to 



110, further comprising: 
a cipher key based on the one random 
encrypt the one content. 



112. The system recited in c 
in a subscriber identification module 
in the mobile station in such a manner 
discover the value of the secret kg 
authentication center of a telecom 



afim 111, wherein the secret key is contained 
provided by the network operator and contained 
hat the user and the mobile station may not 
and the secret key is also stored in an 
infrlastriMure operated by the network operator. 




113. The systerjn recited ih 
cellular phone with GSM authentication 
system, or a WAP-capable cdHular pf on 
HTML capable cellular phone with GSM 



claim 112, wherein the mobile station is a 
capability connected to a processor based 
eywtn GSM authentication capability, or a 
authentication capability. 
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114. The system recited in claim 108, wherein the user pays the content 
provider for the content, using a credit qard, debit card, or electronic transferral of 
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